Allow access to repositories for active accounts without login permission #3957
Comments
|
I think you would be able to use read-write deploy keys for this use-case. |
|
I would like the current behaviour. |
|
For non-actived user, he's profile cannot be view by others and his repository will not be visited too. |
|
Since this issue is still open, I'd like to go on record by agreeing with @lunny. I would interpret "login disabled" to mean that the user's ability to authenticate has been revoked. And if the user isn't allowed to authenticate, they're in effect anonymous, meaning they can access only resources that are public. Furthermore, it would be a major security hazard if a Gitea update suddenly granted new privileges to disabled users. The Deploy Key approach seems reasonable. Or simply strip the user in question of all privileges except access to the necessary repository(ies). |
|
Of note, it's possible for site Admin users to Sudo as these accounts under the API. |
|
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 weeks. Thank you for your contributions. |
|
I think this could be closed now. Please feel free to reopen it. |
[x]):Description
The current behaviour was introduced with PR #3887 and #3889. Before it worked as expected.
Expected behaviour
A user account with "Account activated" and "Login disabled" both enabled should not be able to login into the web interface but may access a git repository to which access was granted.
Actual behaviour
A user account with "Account activated" and "Login disabled" both enabled can neither access the web interface nor a git repository.
Screenshots
Account options:
Output when accessing a repository:
The text was updated successfully, but these errors were encountered: